Job Details

Email to Friend Save Back

Cyber Security Architect

CHICAGO-60610, IL, US
03/11/2019

-

Required Skills

TOGAF 9 certified

Company

Infinity Consulting Solutions, Inc

Experience

5 to 10 Year(s)

Job Description

Cybersecurity Architect

Position Highlights:

As a Security Architect you will have exceptional expertise in network and infrastructure security.

You will assess and evaluate the organizations existing security posture, identify weaknesses and make recommendations.

You will help to define, document and promote security standards and policies throughout the organization.

You will manage multiple projects with a degree of impact and complexity that must be carefully organized to support the internal business unit security requirements.

You will also help lead initiatives to ensure timely delivery of security solutions that support IT Security and business objectives.

You will work independently, and will regularly be given high-level directives and allowed to work independently to satisfy the requirements.

Position Responsibilities:

Partner with stakeholders throughout the organization on all the projects and initiatives to apply security requirements for projects/ products, develop security architecture, develop detailed design, and providing support to help integrate security controls during solution deployment

Educate the various stakeholders of security solution architectural frameworks/patterns, processes, standards and security guidelines related to systems, business or data architecture.

Provide security review/ consulting for project teams or other stakeholders within the business segment to help Influence the overall architecture direction of IT systems and applications and ensure the confidentiality, integrity and availability of the information is protected.

Design and lead the implementation of a solutions architecture across a group of specific applications or technologies based on the organizations strategy, capabilities and requirements

Manage and develop the architecture for a broader scope of projects, working closely with product architects, platform architects and other solution architects that manage and design architecture for a single project or initiative

Assess the IT infrastructure and able to detect critical deficiencies, and recommend solutions for improvements or additional mitigation controls

Able to help define the principles, guidelines, standards and solution to ensure solution decisions are aligned with the organizations future-state architecture vision

Design and direct the governance activities associated with ensuring solutions architecture assurance and compliance

Partner with internal stakeholders within digital technologies and Segment/Functional stakeholders on all assigned projects and initiatives

May assist in other organizational initiatives helping to address security standards/frameworks/processes

Strong analytical skills and deep security subject matter expertise across platforms

Exercise critical thinking in identifying external trends in information security threats and correlating to internal activity

Conduct research as it relates to security for the implementation on new and emerging technology in the organization

Position Qualifications Include:

Bachelors' Degree in a STEM field required

5+ years as a Security Architect required

Either ISC2, SANS, EC-Council or vendor specific certifications attesting to security expertise highly preferred

Masters' Degree in a STEM field is preferred

10+ as a Security Architect is preferred

ISC2 CISSP-ISSAP and/or SABSA (SCM) certification and/or TOGAF 9 certified preferred, SANS GMON a plus

Possess deep cyber security expertise to be credible to organization when making recommendations and driving change

Hands-on experience in implementing security controls and knowledgeable on agile, waterfall devops & devsecops delivery methodologies

Knowledgeable on server and endpoint security (Windows, Linux, Mac) : Anti-malware, Host IPS, Host Firewall, File Integrity Monitoring, Security Configuration etc

Excellent knowledge of core networking fundamentals including TCP/IP, routing, and switching to include security protocols

Excellent Understanding in Network Security including firewall, Network Access Control (NAC), IDS/ IPS, Proxies, WAF, DDoS mitigation, Software Defined Networks, Micro-segmentation etc

Knowledgeable in Data security: encryption, key management, data masking, etc.

Excellent knowledge on authorization models and common authentication protocols

Excellent understanding of SAML, SSO (Single Sign-On) and MFA (Multi Factor Authentication

Deep understanding of Identity & Access Management: Sailpoint, Okta and Cyberarch, User authentication/ authorization, de-provisioning, access review, (Joiner, Mover, Leaver) etc

Knowledgeable on privileged access management: password vaulting, session management, access review, etc

Knowledgeable on application & integration security: Secure SDLC, static/ dynamic testing, web service/ API security, etc

Excellent understanding of PKI infrastructure and its components.

Knowledgeable on Logging/ monitoring, SIEM integration and Incident Response

Capable of conducting in depth research on emerging Cloud security technologies and industry trends, including Cloud Access Security Brokers (CASB), Security Automation and Orchestration (SAO), and SaaS-based security solutions, and implement security strategies for adoption.

Mobile & Digital security, Internet of Things (IoT)

Knowledgeable on Data Loss Prevention strategies and solutions

Exceptional understanding of various security frameworks and standards to include but not limited to: TOGAF, SABSA, NIST CSF, NIST 800 series, ISO 2700x series and Cobit.

Excellent communication skills and ability to work with various functional units throughout the organization to ensure fast and appropriate action is taken when a breach is identified